as far as securing red hat, these articles are golden: http://www.linuxdoc.org/LDP/LG/issue54/stoddard.html http://www.linuxdoc.org/LDP/LG/issue55/stoddard.html
It will patch a lot of the default holes in a redhat install your testing suite will eventually discover. Using tripwire to create a library of checksums of your crucial files and binaries, then using cron to check that they don't change is a good way to ensure the integrity of your binaries. You may also be interested in snort for intrusion detection. For your suite, you might want to look into SAINT. It should point out any holes that it knows to look for. Also, scripting a portscanner like nmap to look for open ports can be a good idea. If new ports open up, I'm sure you'd like to know. Above all else, remember that this is all a process. The most critical component you can add to your suite is diligence. tack On Tue, 19 Mar 2002 [EMAIL PROTECTED] wrote: > Howdy all, > > I'd appreciate recommendations on good security analysis tools for a > RedHat 7.2 box. Basically I want to ensure I can secure it as much as > possible without taking it off the net. I've already run chkrootkit but > would like to add others to my testing suite. > > thx. > .g > > > > _______________________________________________ > Bits mailing list > [EMAIL PROTECTED] > http://www.sugoi.org/mailman/listinfo/bits > -- ------------------------------------------------ Article 19: United Nations Universal Declaration of Human Rights: http://www.unhchr.ch/udhr/lang/eng.htm "Everyone has the right to freedom of opinion and expression; this right includes freedom to hold opinions without interference and to seek, receive and impart information and ideas through any media and regardless of frontiers." _______________________________________________ Bits mailing list [EMAIL PROTECTED] http://www.sugoi.org/mailman/listinfo/bits
